Secunia Security Advisory - Meder Kydyraliev has reported a vulnerability in Apache Struts, which can be exploited by malicious people to bypass certain security restrictions.
9704aaec98df19a25b506983418d8dbfc715aa9929f337f8217c1d0c3043bb39Secunia Security Advisory - A vulnerability has been reported in Microsoft Office Outlook, which can be exploited by malicious people to compromise a user's system.
3cfd7288dc1d7d391d60023a07fc56f0342e27a2b116709071464402b30ff6afSecunia Security Advisory - Two vulnerabilities have been reported in Microsoft Office, which can be exploited by malicious people to compromise a user's system.
ceeb0441533d3175dc984e6785242000188116975e713745c4934e545cbcd8deSecunia Security Advisory - Two vulnerabilities have been discovered in Diem Content Management Framework, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
cc29d018779a35fce683a4bb75d03c92d05ba91fac4588d24c4ffbeba484ded9Secunia Security Advisory - A vulnerability has been discovered in Diferior CMS, which can be exploited by malicious people to conduct cross-site request forgery attacks.
5d4896798120db6e966b7479369626b3d0783575ffe90f618f5ef2409f82c88bI-net Enquiry Management Script suffers from a remote SQL injection vulnerability.
34782258de673addb4aa06645d1e15a227631333a8ad68e616aaf51fcf914cf9Asterisk Recording Interface suffers from cross site request forgery, cross site scripting, denial of service, local file inclusion and path disclosure vulnerabilities.
c70caeea1635b999b092103edfc0d872d548d44507aa8a2562e9b0fa221c5e31Mandriva Linux Security Advisory 2010-131 - Multiple format string and buffer overflow vulnerabilities has been found and corrected in iscsitarget. The updated packages have been patched to correct these issues.
ecd3901c966ed1b4f15abd5c9b4936fd8235c79b4f270c0008cda1fca4342fe7NuralStorm Webmail version 0.985b suffers from cross site scripting, disclosure and shell upload vulnerabilities.
87b1b77abb1761e2c38189b3ae0aea0e15431e70b50b65cbf6474919342c5afcBrief whitepaper detailing a malware epidemic that has broken out on Orkut.
73dc54ba8b4aeec48a54c65b229212900579d41ddf955358bc47f8b81eafc3f8Debian Linux Security Advisory 2069-1 - It was discovered that znc, an IRC bouncer, is vulnerable to denial of service attacks via a NULL pointer dereference when traffic statistics are requested while there is an unauthenticated connection.
3e192ef83287ff3fb0307778bde71bf1c5e03792697a73607f57f14de13ccb99GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP rver, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.
3a312087d3ceb09926c6a460c4fed5913a2e96a9e5b326abb442dfcedfb23b45Orbis CMS version 1.0.2 suffers from multiple cross site request forgery vulnerabilities.
12a63a06868d06645778a5129cfaed27e6cdf45a2615474c31fd1229f7e0eeffCMS Made Simple version 1.8 with the Antz Toolkit version 1.02 module remote shell upload exploit.
a1d25c7086a4b601dc531ef3825d09dc4deb89224b97d6a2e74d38319277add9CMS Made Simple version 1.8 with the Download Manager version 1.4.1 module remote shell upload exploit.
edea7d8d999af11351075f47bc1bbc37793ba0b875e9a6d357bccd176f9c5c8fCMS Made Simple version 1.8 local file inclusion exploit.
1a1daed84fb2084c686a6100600ef7227290c8046b0925b543104077b45fb8b5PyroCMS 0.9.9.1 cross site request forgery exploit that adds a new administrator.
27b3a1822949393041c6aeba34631899b166451805de110fe6f7c98495ae8f89TheHostingTool version 1.2.2 suffers from multiple cross site request forgery vulnerabilities.
03107f5860062d2ff4be712f9d0aaa1ff60b10df840053ec635f573c3277ef57Campsite CMS version 3.4.0 suffers from multiple cross site request forgery vulnerabilities.
a360214bdd6f9b4ba1c46909a0b08347608b423dcf166c1882661f5bd34debceGrafik CMS version 1.1.2 suffers from multiple cross site request forgery vulnerabilities.
0e4f1855125760ce9099c8fea2d6073a9fa5766a0aafbcdb9ca6b7387325f53bImage22 version 1.1.1 Active-X buffer overflow exploit that binds a shell to port 4444.
41e9853077146d1de1f453ea801f845a3bc321d5f14366f5a7b9deb791e27321Hashkill is an opensource hash cracker for Linux that uses OpenSSL. Currently it supports 3 attack methods (dictionary, bruteforce, hybrid) and has 16 plugins for different types of hashes (md5, sha1, phpbb3, mysql, md5 (unix), des(unix), sha(unix), vbulletin, smf, etc). It is multithreaded and supports session save/restore.
4286e56faccb2d2d1fbc57e5e2a094739c85fc3f1261733ebd5c8e38a1394d3aOrbis version 1.0.2 suffers from an authentication bypass vulnerability.
8a131cc48fe00673ca03702da7c148a19cc66f9eeb7054f78e30c1421dd87b94Koobi CMS versions 4.3.0, 4.2.5 and 4.2.4 suffers from a remote SQL injection vulnerability.
abb32912faa8a7443a00cdb931a2c4b766e4fa7de29bfd6ecea36a0ad4d58e0dLifeType version 1.2.10 cross site request forgery exploit that adds a new administrator.
3065c05ab88ca211fc19f137738d7968c0c7429ed95df043c3a2c4838ef6dd70
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed